[Git][security-tracker-team/security-tracker][master] new imagemagick issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Jun 24 21:14:16 BST 2026



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
27ecb199 by Moritz Muehlenhoff at 2026-06-24T22:14:07+02:00
new imagemagick issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -59,9 +59,13 @@ CVE-2026-57280 (Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier do
 CVE-2026-56761 (hono before 4.12.14 contains an html injection vulnerability in jsx se ...)
 	NOT-FOR-US: Hono
 CVE-2026-56370 (ImageMagick before 7.1.2-19 contains an out-of-bounds access vulnerabi ...)
-	TODO: check
+	- imagemagick <unfixed>
+	[trixie] - imagemagick <no-dsa> (Minor issue)
+	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-pmpg-6pww-fg6q
 CVE-2026-56368 (ImageMagick before 7.1.2-15 contains a memory leak vulnerability in mu ...)
-	TODO: check
+	- imagemagick <unfixed>
+	[trixie] - imagemagick <no-dsa> (Minor issue)
+	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wfx3-6g53-9fgc
 CVE-2026-56358 (n8n before 1.123.25 (1.x) and before 2.11.2 (2.x), with the fix also i ...)
 	NOT-FOR-US: n8n
 CVE-2026-56351 (n8n before version 2.4.0 contains a sql injection vulnerability in MyS ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27ecb1998c5fd1952802d3c7eb2eb569acac1ea7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27ecb1998c5fd1952802d3c7eb2eb569acac1ea7
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260624/df06a90d/attachment.htm>


More information about the debian-security-tracker-commits mailing list